Web Hosting Use Ispconfig

Total Page:16

File Type:pdf, Size:1020Kb

Web Hosting Use Ispconfig CHAPTER 5 IMPLEMENTATION AND TESTING 5.1 Implementation Linux Installation 1. According to illustration 5.1 the first step is select the language to install linux. And then create a partition for the linux operating system that will be installed. The partition that will be used in the installation of linux is the swap partition and partition/. 2. According to illustration 5.2 The next step is select the location to determine the timezone in linux. And then select the keyboard layout is used. 3. According to illustration 5.3 the next step is to create a username and password to login to a linux operating system that has been installed. After that the linux installation process will start. 4. According to illustration 5.4 After the installation process is complete restart the computer that has been installed linux. After that login with username and passsword that have been created. 10 11 Illustration 5.1 Display To Select The Language To Install Linux And Create Patition. Illustration 5.2 Display To Select Timezone And Keyboard Layout. 12 Illustration 5.3 Display To Create User And Password And Installation Process Illustration 5.4 Linux Installation Is Complete. ISP Config Installation 1. Open the terminal and sign in as user root. sudo su 2. The next step was to reconfigure the dpkg and select no to use the dash as the default system shell in the bin/sh directory. 13 Illustration 5.5 Reconfigure Dpkg. 3. Disable apparmor. service apparmor stop update-rc.d -f apparmor remove And Remove Apparmor apt-get remove apparmor apparmor-utils Apparmor is a linux security system that can interfere with the installation in the isp config. Apparmor is equal to Selinux which is owned by redhat linux. 4. Installing network time protocol. apt-get -y install ntp ntpdate To set on a system clock with an NTP through internet network when running the server. 5. install e-mail server, MariaDB server, dan Rootkit Hunter. apt-get install rkhunter openssl getmail4 binutils dovecot-imapd dovecot-pop3d dovecot-mysql dovecot-sieve dovecot-lmtpd sudo postfix postfix-mysql postfix-doc mariadb-client mariadb-server 14 6. Configure the type of email to use and enter the system's email name. Type of email used is internet site because this type of email can be accessed through web broswer via a computer network. While the name of the email system is the hostname entered is already created when installing linux. Illustration 5.6 Display To Choose The Type Of E-mail To Be Used. Illustration 5.7 Input System Mail Name. 7. Then edit the configuration file postfix in the directory/etc/postfix/master.cf. nano /etc/postfix/master.cf 15 This configuration is used to enable the SMTP port used to send the e- mail. Uncomment on: submission inet n - - - - smtpd -o syslog_name=postfix/submission -o smtpd_tls_security_level=encrypt -o smtpd_sasl_auth_enable=yes smtps inet n - - - - smtpd -o syslog_name=postfix/smtps -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes SASL itself useful for the security of the user when login using Roundcube. Then change the at-o smtpd_client_restrictions becomes -o smtpd_client_restrictions = permit_sassl_authenticated, rejects. This aim as a restriction permission to login to the account email server t hat has created and match the right username and password used to log what is appropriate or not. 8. After the configuration above, the next step is to restart the postfix to run postfix configuration. service postfix restart 9. Before installing mysql server to do is edit the mysql configuration file. nano /etc/postfix/master.cf Uncomment on : bind address = 127.0.0.1 this aim so that mysql can be accessed online viai ISP Config. 16 10. Then install the mysql server and the mysql server configuration use: mysql_secure_installation The configuration of the mysql server in the form of filling the root password that will be used to login to the mysql server, remove the anonymous user so that people who do not have a user account cannot login, root login remotely in order to disallow mysql can be accessed by way of connect to the server and run mysqlnya a command to access the database, delete the test database, and reload privilege table now. All this configuration is used in order for the existing database in mysql be safe Enter current password for root (enter for none): <-- press enter Set root password? [Y/n] y New password: <-- 12345 Re-enter new password: <-- 12345 Remove anonymous users? [Y/n] <-- y Disallow root login remotely? [Y/n] <-- y Reload privilege tables now? [Y/n] <-- y 11. Then Restart Mysql server service service mysql restart 12. The next step is installing spamasssin and clamcav with: apt-get install spamassassin clamav clamav-daemon zoo unzip bzip2 arj nomarch lzop cabextract apt-listchanges libnet-ldap-perl libauthen-sasl-perl clamav-docs daemon libio-string-perl libio-socket- ssl-perl libnet-ident-perl zip libnet-dns-perl postgrey 13. Disable spamassasin. service spamassassin stop 17 update-rc.d -f spamassassin remove Because the ISP config will call spamassasin when needed. 14. Install PHP Myadmin, apache web server, and PHP 7.0. apt-get install apache2 apache2-doc apache2-utils libapache2-mod- php php7.0 php7.0-common php7.0-gd php7.0-mysql php7.0-imap phpmyadmin php7.0-cli php7.0-cgi libapache2-mod-fcgid apache2- suexec-pristine php-pear php-auth php7.0-mcrypt mcrypt imagemagick libruby libapache2-mod-python php7.0-curl php7.0-intl php7.0-pspell php7.0-recode php7.0-sqlite3 php7.0-tidy php7.0- xmlrpc php7.0-xsl memcached php-memcache php-imagick php- gettext php7.0-zip php7.0-mbstring 15. PHP Myadmin Configuration. Configuration of choosing a web server that will be used for PHP Myadmin, and set the password mysql application in PHP Myadmin. The created password will be used to login to the Myadmin PHP page by using the root user. The web server to be used by PHP Myadmin uses apache 2. Illustration 5.8 The display For Select Webserver. 18 Illustration 5.9 Input PHP MyAdmin Password. 16. Then run the suexec rewrite ssl actions file include cgi in the Apache 2 directory. a2enmod suexec rewrite ssl actions include cgi The purpose of running this configuration is to write the certificate to be used by the ISP config as its security system. 17. After that run the configuration file also dav_fs auth_digest dav headers that are in the directory of apache2. a2enmod dav_fs dav auth_digest headers The purpose of running this Setup is so that the user can manage website files on the server. 18. Add a new configuration file with the name httproxy. conf in directory/etc/apache2/conf-available/. nano /etc/apache2/conf-available/httpoxy.conf The contents of the file are httproxy RequestHeader unset the Proxy early. RequestHeader unset Proxy early 19 Because with the httproxy.conf configuration file will overcome the attack by exploiting the deployment via HTTP Proxy that can change the url. then execute the config file httpoxy. a2enconf httpoxy 19. Restart Service Apache2. service apache2 restart 20. Edit the mimetypes file in /etc/ directory. nano /etc/mime.types And uncomment on application / x-ruby rb. #application/x-ruby This configuration is intended to allow the ISP config to grant permissions for each user logged in to the ISP config page. 21. Restart Apache2 service. service apache2 restart 22. Install PHP Opcode Cache & PHP-FPM. apt-get install php7.0-opcache php-apcu libapache2-mod-fastcgi php7.0-fpm 23. Then run the configuration file actions fastcgi alias. a2enmod actions fastcgi alias This configuratio is required to make the process of opening the website faster. 24. Restart apache2 service. service apache2 restart 25. Install let's encrypt. 20 apt-get -y install letsencrypt This software is useful to encrypt the SSL certificate that has been created and will be used for ISP config. 26. Install PureFTPd & Quota. apt-get install pure-ftpd-common pure-ftpd-mysql quota quotatool 27. Then edit the pure-ftpd-common configuration file in /etc/default/ directory. nano /etc/default/pure-ftpd-common And change virtualchroot to true. VIRTUALCHROOT=true This configuration is required for each user who will have their own directory which is like a directory / which can later be accessed by filezilla. 28. Then change the number on TLS in the / etc / pure-ftpd / conf / TLS directory to . echo 1 > /etc/pure-ftpd/conf/TLS The configuration is intended to enable TLS as an encryption which will then be used to login to the FTP user that has been created with the ISP config. 29. The next step is to create a parent directory. mkdir -p /etc/ssl/private/ To save SSL keys that will be created later. 30. Then create an SSL certificate that has a validity period of up to 7300 days. 21 openssl req -x509 -nodes -days 7300 -newkey rsa:2048 -keyout /etc/ssl/private/pure-ftpd.pem -out /etc/ssl/private/pure-ftpd.pem Open SSL itself is useful for encrypting the process of sending data from server to client or client to server. 31. Then fill in the SSL certificate by entering the country code, province name, city name, organization name, organization unit name, hostname on server, and e-mail address. Country Name (2 letter code) [AU]: <-- ID. State or Province Name (full name) [Some-State]: <-- Jawa tengah. Locality Name (eg, city) []: <-- Semarang. Organization Name (eg, company) [Internet Widgits Pty Ltd]: <-- Quantum Organizational Unit Name (eg, section) []: <-- Quantum Common Name (eg, YOUR name) []: <-- fransiskus Email Address []: <-- [email protected] 32. After that change the permission on pure-ftpd.pem.
Recommended publications
  • Ispconfig Documentation Ispconfig Documentation I
    ISPConfig Documentation ISPConfig Documentation I Table of Contents General...............................................................................................................................................1 1 What is ISPConfig?...............................................................................................................1 2 Terms and structure of the manual.......................................................................................1 3 Installation/Upgrade/Deinstallation.......................................................................................1 3.1 Installation....................................................................................................................1 3.2 Upgrade.......................................................................................................................1 3.3 Deinstallation................................................................................................................2 4 Login and Logout..................................................................................................................2 I Administrator Manual......................................................................................................................3 1 General.................................................................................................................................3 1.1 Login and Password.....................................................................................................3 1.2 ISPConfig Interface
    [Show full text]
  • Installation Guide
    install_guide.book Page i Monday, May 11, 2015 8:48 PM Installation Guide Installation Guide Schrödinger Software Release 2015-2 Schrödinger Press install_guide.book Page ii Monday, May 11, 2015 8:48 PM Installation Guide Copyright © 2015 Schrödinger, LLC. All rights reserved. While care has been taken in the preparation of this publication, Schrödinger assumes no responsibility for errors or omissions, or for damages resulting from the use of the information contained herein. Canvas, CombiGlide, ConfGen, Epik, Glide, Impact, Jaguar, Liaison, LigPrep, Maestro, Phase, Prime, PrimeX, QikProp, QikFit, QikSim, QSite, SiteMap, Strike, and WaterMap are trademarks of Schrödinger, LLC. Schrödinger, BioLuminate, and MacroModel are registered trademarks of Schrödinger, LLC. MCPRO is a trademark of William L. Jorgensen. DESMOND is a trademark of D. E. Shaw Research, LLC. Desmond is used with the permission of D. E. Shaw Research. All rights reserved. This publication may contain the trademarks of other companies. Schrödinger software includes software and libraries provided by third parties. For details of the copyrights, and terms and conditions associated with such included third party software, use your browser to open third_party_legal.html, which is in the docs folder of your Schrödinger software installation. This publication may refer to other third party software not included in or with Schrödinger software ("such other third party software"), and provide links to third party Web sites ("linked sites"). References to such other third party software or linked sites do not constitute an endorsement by Schrödinger, LLC or its affiliates. Use of such other third party software and linked sites may be subject to third party license agreements and fees.
    [Show full text]
  • Ispconfig 3 Manual]
    [ISPConfig 3 Manual] ISPConfig 3 Manual Version 1.0 for ISPConfig 3.0.3 Author: Falko Timme <[email protected]> Last edited 09/30/2010 1 The ISPConfig 3 manual is protected by copyright. No part of the manual may be reproduced, adapted, translated, or made available to a third party in any form by any process (electronic or otherwise) without the written specific consent of projektfarm GmbH. You may keep backup copies of the manual in digital or printed form for your personal use. All rights reserved. This copy was issued to: Thomas CARTER - [email protected] - Date: 2010-11-20 [ISPConfig 3 Manual] ISPConfig 3 is an open source hosting control panel for Linux and is capable of managing multiple servers from one control panel. ISPConfig 3 is licensed under BSD license. Managed Services and Features • Manage one or more servers from one control panel (multiserver management) • Different permission levels (administrators, resellers and clients) + email user level provided by a roundcube plugin for ISPConfig • Httpd (virtual hosts, domain- and IP-based) • FTP, SFTP, SCP • WebDAV • DNS (A, AAAA, ALIAS, CNAME, HINFO, MX, NS, PTR, RP, SRV, TXT records) • POP3, IMAP • Email autoresponder • Server-based mail filtering • Advanced email spamfilter and antivirus filter • MySQL client-databases • Webalizer and/or AWStats statistics • Harddisk quota • Mail quota • Traffic limits and statistics • IP addresses 2 The ISPConfig 3 manual is protected by copyright. No part of the manual may be reproduced, adapted, translated, or made available to a third party in any form by any process (electronic or otherwise) without the written specific consent of projektfarm GmbH.
    [Show full text]
  • Internet Domain Name System
    IINNTTEERRNNEETT DDOOMMAAIINN NNAAMMEE SSYYSSTTEEMM http://www.tutorialspoint.com/internet_technologies/internet_domain_name_system.htm Copyright © tutorialspoint.com Overview When DNS was not into existence, one had to download a Host file containing host names and their corresponding IP address. But with increase in number of hosts of internet, the size of host file also increased. This resulted in increased traffic on downloading this file. To solve this problem the DNS system was introduced. Domain Name System helps to resolve the host name to an address. It uses a hierarchical naming scheme and distributed database of IP addresses and associated names IP Address IP address is a unique logical address assigned to a machine over the network. An IP address exhibits the following properties: IP address is the unique address assigned to each host present on Internet. IP address is 32 bits 4bytes long. IP address consists of two components: network component and host component. Each of the 4 bytes is represented by a number from 0 to 255, separated with dots. For example 137.170.4.124 IP address is 32-bit number while on the other hand domain names are easy to remember names. For example, when we enter an email address we always enter a symbolic string such as [email protected]. Uniform Resource Locator URL Uniform Resource Locator URL refers to a web address which uniquely identifies a document over the internet. This document can be a web page, image, audio, video or anything else present on the web. For example, www.tutorialspoint.com/internet_technology/index.html is an URL to the index.html which is stored on tutorialspoint web server under internet_technology directory.
    [Show full text]
  • Implementation of Embedded Web Server Based on ARM11 and Linux Using Raspberry PI
    International Journal of Recent Technology and Engineering (IJRTE) ISSN: 2277-3878, Volume-3 Issue-3, July 2014 Implementation of Embedded Web Server Based on ARM11 and Linux using Raspberry PI Girish Birajdar Abstract— As ARM processor based web servers not uses III. HARDWARE USED computer directly, it helps a lot in reduction of cost. In this We will use different hardware to implement this embedded project our aim is to implement an Embedded Web Server (EWS) based on ARM11 processor and Linux operating system using web server, which are described in this section. Raspberry Pi. it will provide a powerful networking solution with 1. Raspberry Pi : The Raspberry Pi is low cost ARM wide range of application areas over internet. We will run web based palm-size computer. The Raspberry Pi has server on an embedded system having limited resources to serve microprocessor ARM1176JZF-S which is a member of embedded web page to a web browser. ARM11 family and has ARMv6 architecture. It is build Index Terms— Embedded Web Server, Raspberry Pi, ARM, around a BCM2835 broadcom processor. ARM processor Ethernet etc. operates at 700 MHz & it has 512 MB RAM. It consumes 5V electricity at 1A current due to which power I. INTRODUCTION consumption of raspberry pi is less. It has many peripherals such as USB port, 10/100 ethernet, GPIO, HDMI & With evolution of World-Wide Web (WWW), its composite video outputs and SD card slot.SD card slot is application areas are increasing day by day. Web access used to connect the SD card which consist of raspberry linux functionality can be embedded in a low cost device which operating system.
    [Show full text]
  • Server Administration Manual Release Latest
    Nextcloud Server Administration Manual Release latest The Nextcloud developers Oct 01, 2021 CONTENTS 1 Introduction 1 1.1 Videos and blogs.............................................1 1.2 Target audience..............................................1 2 Release notes 3 3 Maintenance and release schedule5 3.1 Major releases..............................................5 3.2 Maintenance releases...........................................5 3.3 Older versions..............................................6 4 Installation and server configuration7 4.1 System requirements...........................................7 4.2 Deployment recommendations......................................9 4.3 Installation on Linux...........................................9 4.4 Installation wizard............................................ 17 4.5 Installing from command line...................................... 21 4.6 Supported apps.............................................. 22 4.7 SELinux configuration.......................................... 24 4.8 NGINX configuration.......................................... 27 4.9 Hardening and security guidance.................................... 36 4.10 Server tuning............................................... 40 4.11 Example installation on Ubuntu 20.04 LTS............................... 42 4.12 Example installation on CentOS 8.................................... 44 4.13 Example installation on OpenBSD.................................... 48 5 Nextcloud configuration 53 5.1 Warnings on admin page........................................
    [Show full text]
  • General 1 ¿Que Es Ispconfig?
    ISPConfig Documentation ISPConfig Documentation I Table de Contenidos General...............................................................................................................................................1 1 ¿Que es ISPConfig?.............................................................................................................1 2 Términos y estructura del manual.........................................................................................1 3 Instalación/Actualización/Desinstalación..............................................................................1 3.1 Instalación....................................................................................................................1 3.2 Actualización................................................................................................................1 3.3 Desinstalación..............................................................................................................2 4 Login y Finalizar....................................................................................................................2 I Manual del Administrador...............................................................................................................3 1 General.................................................................................................................................3 1.1 Login y contraseña "Password"...................................................................................3 1.2 El interfaz para administradores
    [Show full text]
  • Domain Name System System Work?
    What is the DNS? - how it works Isaac Maposa | Dev Anand Teelucksingh | Beran Gillen Community Onboarding Program | 11 March 2017 Agenda 1 2 3 What is the Domain Structure of the How does the Name System? Domain Name Domain Name System System Work? 4 5 6 Who makes the Stakeholders in the Engage with ICANN Domain Name Domain Name ??? System Work? System. | 2 What is the Domain Name System (DNS)? The Internet, what is it..? ● The Internet is a network of networks that interconnects devices to exchange information. ● In order to “talk” to each other, all of these devices must have a unique numerical address called an Internet Protocol address or IP Address. An example of an IP address is 94.127.53.132 ● When you visit a website from your browser, you are requesting the website from your device’s IP address to the web server’s IP address. ● However, you don’t type in the ip address of the web server, rather the domain name of for example www.google.com ● In so doing, you have queried the DNS. ● So what is this DNS???? | 4 What is the Domain Name System? ● The Domain Name System or DNS overcomes this problem of remembering IP addresses by mapping domain names to IP addresses. ● While this sounds like a phone book, it is not a centralised database. ● The DNS is a distributed database across a hierarchy of networks of servers and provide ways for devices and software (like browsers and email) to query the DNS to get an IP address. ● Domain names must be unique.
    [Show full text]
  • Nasazení Systému Pro Správu Projektových Úložišť a Webových Serverů
    Mendelova univerzita v Brně Provozně ekonomická fakulta Nasazení systému pro správu projektových úložišť a webových serverů Bakalářská práce Vedoucí práce: Barbora Smejkalová Ing. Jiří Balej Brno 2017 Čestné prohlášení Prohlašuji, že jsem tuto práci: Nasazení systému pro správu projektových úložišť a webových serverů vypracovala samostatně a veškeré použité prameny a informace jsou uvedeny v se- znamu použité literatury. Souhlasím, aby moje práce byla zveřejněna v souladu s § 47b zákona č. 111/1998 Sb., o vysokých školách ve znění pozdějších předpisů, a v souladu s platnou Směrnicí o zveřejňování vysokoškolských závěrečných prací. Jsem si vědoma, že se na moji práci vztahuje zákon č. 121/2000 Sb., autorský zákon, a že Mendelova univerzita v Brně má právo na uzavření licenční smlouvy a užití této práce jako školního díla podle § 60 odst. 1 Autorského zákona. Dále se zavazuji, že před sepsáním licenční smlouvy o využití díla jinou osobou (subjektem) si vyžádám písemné stanovisko univerzity o tom, že předmětná licenč- ní smlouva není v rozporu s oprávněnými zájmy univerzity, a zavazuji se uhradit případný příspěvek na úhradu nákladů spojených se vznikem díla, a to až do jejich skutečné výše. Brno 19. května 2017 ................................................................ Poděkování Ráda bych touto cestou poděkovala Ing. Jiřímu Balejovi za vedení této baka- lářské práce. 4 Abstract Smejkalová, B. Choosing suitable control panel to manage servers and storage space of web projects. Bachelor thesis. Brno: Mendel University, 2017. This thesis deals with installation and testing selected control panels which will fulfil the requirements of Mendel University. Selected panel will contain test data and required functions are going to be configured to match the conditions.
    [Show full text]
  • A L E X a N D R L Y a K H O V
    A L E X A N D R L Y A K H O V W O R K E X P E R I E N C E Q A E N G I N E E R JCI DESEMBER TODAY | '19 - Testing server application for IoT security devises Writing HLD Working with testrail JIRA . , , Slack Working with MySQL Radis Nginx SSL python BASH scripting Automating my routine . , , , , / . work with python testing framework . Python Dev L I N U X A D M I N I S T R A T O R D E V O P S / SOFTEVOL AUGUST DESEMBER | '18 - '19 My goal is to automate complex processes and make life easier Administering Linux servers on AWS Google Сloud PROXMOX KVM LXC Administration of . , , ( , ). web panels Ispmanager Cpanel Plesk VestaCP ISPconfig client sites adding ssl certificates ( , , , , ), , Comodo Let s Encript MySQL database administration Writing Python and Shell scripts ( , ' ), . Also see my profile on github https github com eleutherius . : :// . / . T E C H S K I L L S L I N U X A D M I N I S T R A T O R HTML CSS Netforce UA APRIL AUGUST 5/ 3 | '18 - '18 BASH PYTHON Administering Linux servers on AWS Google Сloud PROXMOX KVM LXC Administration of Git , , ( , ). web panels Ispmanager Cpanel Plesk VestaCP ISPconfig client sites adding ssl certificates Linix ( , , , , ), , Comodo Let s Encript MySQL database administration MariaDB Percona server Percona FreeBSD ( , ' ), ( , , LAMP LEMP FAMP cluster vmware esxi vsphere vcenter Optimizing sites for evaluating google pagespeed / / ) ( , ). MYSQL SQL N E T W O R K E N G I N E E R AWS IC LINE UA JUNE APRIL - | '14 - '18 NGINX APACHE Setting up administering network equipment BDCOM OLT HUAWEI and ZTE CISCO building DOCKER , ( , , ) BOOTSTRAP network design developing network projects for PON technology integrating network service 4 , , accounting and monitoring networks such as Zabbix and Userside Identification of malfunctions CISCO .
    [Show full text]
  • Set up Mail Server Documentation 1.0
    Set Up Mail Server Documentation 1.0 Nosy 2014 01 23 Contents 1 1 1.1......................................................1 1.2......................................................2 2 11 3 13 3.1...................................................... 13 3.2...................................................... 13 3.3...................................................... 13 4 15 5 17 5.1...................................................... 17 5.2...................................................... 17 5.3...................................................... 17 5.4...................................................... 18 6 19 6.1...................................................... 19 6.2...................................................... 28 6.3...................................................... 32 6.4 Webmail................................................. 36 6.5...................................................... 37 6.6...................................................... 38 7 39 7.1...................................................... 39 7.2 SQL.................................................... 41 8 43 8.1...................................................... 43 8.2 strategy.................................................. 43 8.3...................................................... 44 8.4...................................................... 45 8.5...................................................... 45 8.6 Telnet................................................... 46 8.7 Can postfix receive?..........................................
    [Show full text]
  • Ispconfig Documentation Ispconfig Documentation I
    ISPConfig Documentation ISPConfig Documentation I Table of Contents III Customer Manual...........................................................................................................................1 1 General.................................................................................................................................1 1.1 Login and Password.....................................................................................................1 1.2 Customer Interface.......................................................................................................1 1.3 ISPConfig Privileges for Customers.............................................................................1 1.4 Saving..........................................................................................................................2 1.5 Changing the ISPConfig Password.............................................................................2 1.6 Language Settings.......................................................................................................3 1.7 Display of Passwords in the ISPConfig System...........................................................3 1.8 Help..............................................................................................................................4 2 Sites......................................................................................................................................5 2.1 Basic Data of a Site......................................................................................................5
    [Show full text]